145 matches found
OESA-2026-1006 hdf5 security update
HDF5 is a data model, library, and file format for storing and managing data. It supports an unlimited variety of datatypes, and is designed for flexible and efficient I/O and for high volume and complex data. HDF5 is portable and is extensible, allowing applications to evolve in their use of HDF...
PT-2026-20919
Name of the Vulnerable Software and Affected Versions HDF5 versions prior to 1.14.4-2 Description HDF5 is software used for managing data. An attacker controlling an h5 file parsed by HDF5 can trigger a write-based heap buffer overflow. This can lead to a denial-of-service condition, and...
HDF5 Installed (Linux)
Binary data hdf5nixinstalled.nbin...
HDF5 H5MM.c H5MM_realloc double free
...
HDF5 Type Conversion Logic H5T__bit_copy heap-based overflow
...
Linux Distros Unpatched Vulnerability : CVE-2025-2308
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as critical, was found in HDF5 1.14.6. This affects the function H5Zscaleoffsetdecompressonebyte of the component...
UBUNTU-CVE-2025-7067
A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FSsinfoserializenodecb of the file src/H5FScache.c. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed ...
SUSE CVE-2025-6816
A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5Ofsinfoencode of the file /src/H5Ofsinfo.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to...
Stack-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow in the H5Gnodecmp3 function. An attacker can cause a denial of service by providing specially crafted input that triggers a buffer overflow during processing. Remediation A fix was pushed into the master bran...
HDF5 安全漏洞
HDF5 is a library of HDF open source . HDF5 version 1.14.6 there is a buffer overflow vulnerability , the vulnerability stems from the file src/H5Centry.c function H5Cflushsingleentry fails to correctly validate the length of the input data size , a remote attacker can use this vulnerability on t...
AZL-64437 CVE-2025-6816 affecting package hdf5 for versions less than 1.14.6-1
A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5Ofsinfoencode of the file /src/H5Ofsinfo.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to...
HDF5 安全漏洞
HDF5 is an open source file format and library for storing and managing large-scale scientific data. HDF5 suffers from a heap buffer overflow vulnerability that originates from an exception in the handling of the H5Ochunkprotect function in the file /src/H5Ochunk.c. An attacker can exploit this...
DEBIAN-CVE-2025-6750
A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. Affected by this issue is the function H5Omtimenewencode of the file src/H5Omtime.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the...
UBUNTU-CVE-2025-6750
A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. Affected by this issue is the function H5Omtimenewencode of the file src/H5Omtime.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the...
Out-of-Bounds
Overview Affected versions of this package are vulnerable to Out-of-Bounds the function H5Faddrdecodelen in the file H5Fint.c. An attacker can execute arbitrary code, cause a denial of service, or potentially alter data by providing specially crafted input that triggers a heap-based overflow...
AZL-64278 CVE-2025-6269 affecting package hdf5 for versions less than 1.14.6-1
A vulnerability classified as critical was found in HDF5 up to 1.14.6. Affected by this vulnerability is the function H5Creconstructcacheentry of the file H5Cimage.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the...
SUSE CVE-2025-44904
hdf5 v1.14.6 was discovered to contain a heap buffer overflow via the H5VMmemcpyvv function...
hdf5: multiple CVEs
HDF5 library contains a memory corruption issue in H5Aclose function resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...
hdf5: multiple CVEs
HDF5 Library through 1.14.3 has a heap buffer overflow in H5Omtimenewencode in H5Omtime.c...
HDF5 Double Release Vulnerability
HDF5 is a library of HDF open source . HDF5 has a double release vulnerability, which originates from the double release of the parameter mem of the function H5MMrealloc in the file src/H5MM.c. There are no detailed vulnerability details provided...